svn_xml_is_xml_safe() ... is not so safe?

From: Ben Collins-Sussman <sussman_at_collab.net>
Date: 2005-02-18 18:11:45 CET

On Feb 18, 2005, at 10:56 AM, Ben Collins-Sussman wrote:

>
> kfogel and I are persuaded. The final strategy will be:
>
> 1. svn_client_lock() will throw error if it sees a non-xml-safe lock
> comment.
> 2. svn_fs_lock() will do the same.
> 3. svn_ra_dav__lock() will (obviously) xml-escape the lock comment
> before sending.
>
> But... a different problem has come up. See my next mail.
>

I thought that the function svn_xml_is_xml_safe() was our magic ticket,
but upon looking at its implementation, it seems to be overly
restrictive. Look at the bitmask it uses: it won't allow valid UTF8
through!

This is a pretty old function... are there latent bugs lying around?

I suspect we need a new function that allows xml-safe UTF8, and
disallows non-xml-safe UTF8.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Fri Feb 18 18:18:31 2005

This message: [ Message body ]
Next message: C. Michael Pilato: "Re: svn_xml_is_xml_safe() ... is not so safe?"
Previous message: Ben Collins-Sussman: "Re: safe HTTP transport of lock comments"
In reply to: Ben Collins-Sussman: "Re: safe HTTP transport of lock comments"
Next in thread: C. Michael Pilato: "Re: svn_xml_is_xml_safe() ... is not so safe?"
Reply: C. Michael Pilato: "Re: svn_xml_is_xml_safe() ... is not so safe?"
Reply: Julian Foad: "Re: svn_xml_is_xml_safe() ... is not so safe?"
Reply: Peter N. Lundblad: "Re: svn_xml_is_xml_safe() ... is not so safe?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]